Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HyiZ0DNG8yJxOzJD0_4UBIZRoiI.roa
File: HyiZ0DNG8yJxOzJD0_4UBIZRoiI.roa (raw, json)
Hash identifier: /giN7tTQQaBR2oVaUf9I4eZKzgRm06wdB9s5h+890oI=
Subject key identifier: 1F:28:99:D0:33:46:F3:22:71:3B:32:43:D3:FE:14:04:86:51:A2:22
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018585F324411790A1C36EBDE52512A40E66
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HyiZ0DNG8yJxOzJD0_4UBIZRoiI.roa
Signing time: Fri 06 Jan 2023 07:19:42 +0000
ROA not before: Fri 06 Jan 2023 07:19:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 62.60.216.0/22 maxlen: 24
62.60.128.0/22 maxlen: 24
62.60.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Jan 2023 10:55:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:85:f3:24:41:17:90:a1:c3:6e:bd:e5:25:12:a4:0e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 6 07:19:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f2899d03346f322713b3243d3fe14048651a222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:da:d8:19:74:3b:fe:5c:99:61:39:bb:41:88:
50:9d:91:94:20:ff:9c:43:c7:ed:82:a3:88:02:3c:
5f:9e:aa:b8:72:a9:94:b2:c5:18:a4:14:3a:99:34:
41:05:38:2f:f8:97:25:52:1d:c8:5a:56:46:b6:f1:
67:d3:ae:48:b2:6c:6b:59:0c:52:d1:4d:05:25:04:
80:0a:64:89:38:77:38:0b:d6:97:77:b4:06:8c:0c:
20:06:3a:44:2b:bc:7b:0d:8d:1f:71:53:63:b6:1d:
72:c5:a6:ec:9b:1f:d6:58:38:89:37:6b:21:fe:47:
dd:1a:a8:fa:9a:36:cd:af:ab:29:d5:db:8e:17:63:
2b:ee:e6:2e:7a:b8:5e:31:84:57:43:68:42:7f:a7:
b0:d8:27:a1:37:a4:b8:b8:ef:84:77:3d:1c:b2:19:
31:84:6e:67:1f:c0:e0:9a:60:a6:e4:13:9a:3b:af:
e2:b1:c0:5a:8f:df:f3:4d:06:30:fa:b8:c9:9e:85:
73:40:fb:47:84:06:84:47:b5:c1:b8:ca:f9:09:9e:
f2:17:03:5b:66:68:a1:38:89:49:e0:76:b8:f4:b1:
9a:be:f7:71:0e:67:86:67:f3:5c:a5:58:65:bb:d8:
9f:df:ba:7b:c8:98:98:e7:fa:af:2d:37:45:5d:9b:
12:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:28:99:D0:33:46:F3:22:71:3B:32:43:D3:FE:14:04:86:51:A2:22
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HyiZ0DNG8yJxOzJD0_4UBIZRoiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0/22
62.60.152.0/22
62.60.216.0/22
Signature Algorithm: sha256WithRSAEncryption
80:91:bc:ed:2e:61:cd:29:16:c8:3c:7e:7b:9e:52:ad:4d:c0:
a7:e5:d1:b1:0d:7b:68:e1:ba:63:ea:b2:9d:30:49:b7:ad:03:
f1:df:1c:ed:14:9e:ab:4c:44:5b:9a:18:dd:05:79:47:1f:1a:
ca:af:7f:33:c1:d6:a9:71:66:0b:dd:4b:98:10:e7:fb:09:3b:
12:06:28:ee:61:96:0d:ec:77:5f:43:ae:4d:c1:38:1e:f8:07:
8e:57:55:c1:57:41:77:14:d2:f1:76:c3:01:af:3f:bb:a3:27:
1f:36:ba:4d:ec:0c:89:fa:0c:1a:fd:ea:bd:f3:53:88:48:c6:
fe:93:97:54:2c:18:44:d5:c9:6b:20:fc:e3:54:b0:b4:71:21:
60:89:0b:a2:9a:a1:55:c2:cf:2f:f9:a8:ce:4d:29:6e:80:87:
25:ce:f6:57:a2:37:0a:02:c3:87:28:da:ef:47:c8:cd:15:20:
ac:b1:30:d2:5f:6a:a6:55:5f:71:6b:25:4c:71:52:80:fb:5f:
42:d1:af:3d:c6:4c:39:83:a5:8b:16:df:d1:58:21:63:e3:62:
99:22:c7:f6:3b:20:b2:9f:3f:6b:1c:bb:b2:01:49:9f:4b:52:
a1:da:ab:c8:0d:4f:e7:a0:9e:9a:db:2e:1b:f0:48:f9:53:3c:
42:fe:32:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org